cpe:/a:cmscout:cmscout:2.08 CVE-2010-5059 2011-11-22T20:55:04.593-05:00 2012-01-10T00:00:00.000-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2011-11-23T10:48:00.000-05:00 SECUNIA 39602 BID 39707 VUPEN ADV-2010-0998 MISC http://packetstormsecurity.org/1004-exploits/cmscout-sql.txt MISC http://www.exploit-db.com/exploits/12407 SQL injection vulnerability in index.php in CMScout 2.0.8 allows remote attackers to execute arbitrary SQL commands via the album parameter in a photos action.